FW: VPN Question

["Atmavidya, Ananda" <ananda_atmavidya () amr-ems com>]

-----Original Message-----
From: Atmavidya, Ananda 
Sent: Friday, August 22, 2003 2:48 PM
To: 'DeGennaro, Gregory'
Subject: RE: VPN Question


This happens when the subnet that the hotel was using matches one of the internal domain addresses of the VPN. There is 
no work around for the problem. You can change your internal VPN addresses to a not so common subnet which will reduce 
the possibility of it from happening. Example: If the hotel use 192.168.1.x/24 subnet and your internal domain for your 
VPN is the same subnet you will have a routing and VPN tunnel problems.

Ciao
-----Original Message-----
From: DeGennaro, Gregory [mailto:Gregory_DeGennaro () csaa com]
Sent: Friday, August 22, 2003 1:32 PM
To: Jim Brezicky; security-basics () securityfocus com
Subject: RE: VPN Question


Jim,

This is a hotel issue.  If it works in some and not in others, it means in
this case that the source is the problem.  Unless you have round robin VPN
IP addresses and your users do not know what the IPs are?  Which I highly
doubt and why would you want to do this?

Regards,

Greg DeGennaro Jr., CCNP
Security Analyst


-----Original Message-----
From: Jim Brezicky [mailto:brezicky () infimed com] 
Sent: Friday, August 22, 2003 10:29 AM
To: security-basics () securityfocus com
Subject: VPN Question




Good afternoon all,

This posting is a little off track, but I'm hoping someone can help me 
anyway.

I have a SonicWall Pro230 and I'm trying to do VPN with it. My users 
connect from some locations and not others. Example: They could connect 
from the Airport in Cincinnati, but not the airport in Las Vegas. Seems 
they can't connect in many (if any hotels). In speaking with SonicWall 
they said this is a known issue when connecting through a firewall on the 
hotel side.

I know I'm not the first company to try this, and was wondering how others 
get by this issue? Or is this an inherent SonicWall issue.

Most of my users are traveling Sales people, and will go all around the 
US, and Japan.

Any insight would be GREATLY appreciated.

Thanks,

Jim Brezicky
InfiMed Inc

---------------------------------------------------------------------------
----------------------------------------------------------------------------

---------------------------------------------------------------------------
Attend Black Hat Briefings & Training Federal, September 29-30 (Training), 
October 1-2 (Briefings) in Tysons Corner, VA; the world's premier 
technical IT security event.  Modeled after the famous Black Hat event in 
Las Vegas! 6 tracks, 12 training sessions, top speakers and sponsors.  
Symantec is the Diamond sponsor.  Early-bird registration ends September 6.Visit us: www.blackhat.com
----------------------------------------------------------------------------


---------------------------------------------------------------------------
Attend Black Hat Briefings & Training Federal, September 29-30 (Training),
October 1-2 (Briefings) in Tysons Corner, VA; the world's premier
technical IT security event.  Modeled after the famous Black Hat event in
Las Vegas! 6 tracks, 12 training sessions, top speakers and sponsors.
Symantec is the Diamond sponsor.  Early-bird registration ends September 6.Visit us: www.blackhat.com
----------------------------------------------------------------------------